CVE-2011-1487
published 2011-04-11CVE-2011-1487: The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the…
PriorityP338medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
8.71%
94.5th percentile
The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted string.
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | perl | < perl 5.10.1-20 (bookworm) | perl 5.10.1-20 (bookworm) |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
| perl | perl | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
osv5.0MEDIUM
vendor_ubuntu7.5HIGH
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-j9hm-95rh-8hr5: The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5
ghsa_unreviewed·2022-05-17
CVE-2011-1487 [MEDIUM] GHSA-j9hm-95rh-8hr5: The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5
The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted string.
OSV
CVE-2011-1487: The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5
osv·2011-04-11·CVSS 5.0
CVE-2011-1487 [MEDIUM] CVE-2011-1487: The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5
The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted string.
Ubuntu
Perl vulnerabilities
vendor_ubuntu·2011-05-03·CVSS 7.5
CVE-2010-2761 [HIGH] Perl vulnerabilities
Title: Perl vulnerabilities
Summary: An attacker could send crafted input to Perl and bypass intended
restrictions.
It was discovered that the Safe.pm Perl module incorrectly handled
Safe::reval and Safe::rdo access restrictions. An attacker could use this
flaw to bypass intended restrictions and possibly execute arbitrary code.
(CVE-2010-1168, CVE-2010-1447)
It was discovered that the CGI.pm Perl module incorrectly handled certain
MIME boundary strings. An attacker could use this flaw to inject arbitrary
HTTP headers and perform HTTP response splitting and cross-site scripting
attacks. This issue only affected Ubuntu 6.06 LTS, 8.04 LTS, 10.04 LTS and
10.10. (CVE-2010-2761, CVE-2010-4411)
It was discovered that the CGI.pm Perl module incorrectly handled newline
characters. An attacker
Red Hat
perl: lc(), uc() routines are laundering tainted data
vendor_redhat·2011-03-30·CVSS 5.0
CVE-2011-1487 [MEDIUM] perl: lc(), uc() routines are laundering tainted data
perl: lc(), uc() routines are laundering tainted data
The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted string.
Statement: The Red Hat Security Response Team has rated this issue as having low security impact, and it did not affect the versions of perl as shipped with Red Hat Enterprise Linux 4 and 5. A future update in Red Hat Enterprise Linux 6 may address this flaw.
Package: perl (Red Hat Enterprise Linux 4) - Not affected
Package: perl (Red Hat Enterprise Linux 5) - Not affected
Debian
CVE-2011-1487: perl - The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11....
vendor_debian·2011·CVSS 5.0
CVE-2011-1487 [MEDIUM] CVE-2011-1487: perl - The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11....
The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted string.
Scope: local
bookworm: resolved (fixed in 5.10.1-20)
bullseye: resolved (fixed in 5.10.1-20)
forky: resolved (fixed in 5.10.1-20)
sid: resolved (fixed in 5.10.1-20)
trixie: resolved (fixed in 5.10.1-20)
No detection rules found.
http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057891.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-April/057971.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.htmlhttp://openwall.com/lists/oss-security/2011/04/01/3http://openwall.com/lists/oss-security/2011/04/04/35http://perl5.git.perl.org/perl.git/commit/539689e74a3bcb04d29e4cd9396de91a81045b99http://rt.perl.org/rt3/Public/Bug/Display.html?id=87336http://secunia.com/advisories/43921http://secunia.com/advisories/44168http://www.debian.org/security/2011/dsa-2265http://www.mandriva.com/security/advisories?name=MDVSA-2011:091http://www.securityfocus.com/bid/47124https://bugzilla.redhat.com/show_bug.cgi?id=692844https://bugzilla.redhat.com/show_bug.cgi?id=692898https://exchange.xforce.ibmcloud.com/vulnerabilities/66528http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057891.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-April/057971.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.htmlhttp://openwall.com/lists/oss-security/2011/04/01/3http://openwall.com/lists/oss-security/2011/04/04/35http://perl5.git.perl.org/perl.git/commit/539689e74a3bcb04d29e4cd9396de91a81045b99http://rt.perl.org/rt3/Public/Bug/Display.html?id=87336http://secunia.com/advisories/43921http://secunia.com/advisories/44168http://www.debian.org/security/2011/dsa-2265http://www.mandriva.com/security/advisories?name=MDVSA-2011:091http://www.securityfocus.com/bid/47124https://bugzilla.redhat.com/show_bug.cgi?id=692844https://bugzilla.redhat.com/show_bug.cgi?id=692898https://exchange.xforce.ibmcloud.com/vulnerabilities/66528
2011-04-11
Published